Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

250796 matches found

EUVD
EUVDadded 2026/05/27 2:13 p.m.11 views

EUVD-2026-32513

Jenkins Credentials Binding Plugin 720.v3f6decef43ea and earlier does not properly sanitize file names for file and zip file credentials, allowing attackers able to provide credentials to a job to write files to arbitrary locations on the node filesystem, which can lead to remote code execution i...

7.5CVSS6.5AI score0.01768EPSS
Exploits0References1
AlpineLinux
AlpineLinuxadded 2026/05/27 2:13 p.m.13 views

CVE-2026-48922

Jenkins Credentials Binding Plugin 720.v3f6decef43ea and earlier does not properly sanitize file names for file and zip file credentials, allowing attackers able to provide credentials to a job to write files to arbitrary locations on the node filesystem, which can lead to remote code execution i...

7.5CVSS6.5AI score0.01768EPSS
Exploits0References1
GithubExploit
GithubExploitadded 2026/05/27 2:12 p.m.111 views

Exploit for CVE-2026-45659

CVE-2026-45659 SharePoint Deserialization RCE Overview E...

8.8CVSS6.8AI score0.01145EPSS
Exploits3
IBM Security Bulletins
IBM Security Bulletinsadded 2026/05/27 2:5 p.m.10 views

Security Bulletin: IBM Sterling Control Center is affected by vulnerabilities in activemq-all (CVE-2026-40466 and CVE-2026-41044)

Summary IBM Sterling Control Center is affected by vulnerabilities CVE-2026-40466 and CVE-2026-41044 reported for activemq-all-5.19.0.jar. Vulnerability Details CVEID:CVE-2026-40466 DESCRIPTION: Improper Input Validation, Improper Control of Generation of Code 'Code Injection' vulnerability in...

8.8CVSS6.4AI score0.18014EPSS
Exploits0Affected Software1
Vulnrichment
Vulnrichmentadded 2026/05/27 1:17 p.m.5 views

CVE-2026-8175 Multiple vulnerabilities in Aspera applications.

IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Server 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Endpoint are affected by a buffer overflow in the asperahttpd component. This vulnerability could be exploited to caus...

9.8CVSS6.4AI score0.00459EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/27 1:17 p.m.6 views

CVE-2026-8175

IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Server 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Endpoint are affected by a buffer overflow in the asperahttpd component. This vulnerability could be exploited to caus...

9.8CVSS6.4AI score0.00459EPSS
Exploits0References2Affected Software2
EUVD
EUVDadded 2026/05/27 1:17 p.m.7 views

EUVD-2026-32496

IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Server 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Endpoint are affected by a buffer overflow in the asperahttpd component. This vulnerability could be exploited to caus...

9.8CVSS6.4AI score0.00459EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/05/27 1:14 p.m.41 views

CVE-2026-7524 Path Traversal Vulnerability in File Processing Components Allows Unauthorized File System Access and Potential Remote Code Execution

IBM Langflow OSS 1.0.0 through 1.9.1 could allow remote code execution due to improper validation of symbolic links during archive extraction...

9.8CVSS0.00444EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/27 1:14 p.m.7 views

CVE-2026-7524

IBM Langflow OSS 1.0.0 through 1.9.1 could allow remote code execution due to improper validation of symbolic links during archive extraction...

9.8CVSS6.4AI score0.00444EPSS
Exploits0References2Affected Software1
EUVD
EUVDadded 2026/05/27 1:14 p.m.6 views

EUVD-2026-32494

IBM Langflow OSS 1.0.0 through 1.9.1 could allow remote code execution due to improper validation of symbolic links during archive extraction...

9.8CVSS6.4AI score0.00444EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/05/27 1:14 p.m.7 views

CVE-2026-7524 Path Traversal Vulnerability in File Processing Components Allows Unauthorized File System Access and Potential Remote Code Execution

IBM Langflow OSS 1.0.0 through 1.9.1 could allow remote code execution due to improper validation of symbolic links during archive extraction...

9.8CVSS6.4AI score0.00444EPSS
Exploits0References1
GithubExploit
GithubExploitadded 2026/05/27 12:23 p.m.54 views

Exploit for Code Injection in Vmware Spring_Framework

PoC — CVE-2022-22965 Spring4Shell Disclaimer: This re...

9.8CVSS7.2AI score0.94428EPSS
Exploits100
RedhatCVE
RedhatCVEadded 2026/05/27 9:40 a.m.10 views

CVE-2025-51427

A flaw was found in ModelScope. This vulnerability allows a remote attacker to execute arbitrary code by providing a specially crafted module within the configuration file deymini.yaml under the 'nnet.module' key. Successful exploitation could lead to complete system compromise...

8.1CVSS6.1AI score0.00045EPSS
Exploits0References6
Patchstack
Patchstackadded 2026/05/27 9:16 a.m.8 views

WordPress affiliate-toolkit plugin <= 3.8.7 - Arbitrary Code Execution vulnerability

Arbitrary Code Execution vulnerability discovered by Nguyen Quang Truong in WordPress Plugin affiliate-toolkit versions = 3.8.7...

7.2CVSS5.8AI score0.00322EPSS
Exploits0References1Affected Software1
NVD
NVDadded 2026/05/27 9:16 a.m.7 views

CVE-2025-12686

Buffer copy without checking size of input 'Classic Buffer Overflow' vulnerability in AdminCenter in Synology BeeStation OS before 1.3.2-65648 allows remote attackers to execute arbitrary code via unspecified vectors...

9.8CVSS0.00269EPSS
Exploits0References1
Patchstack
Patchstackadded 2026/05/27 9:12 a.m.7 views

WordPress WPCode – Insert Headers and Footers + Custom Code Snippets – WordPress Code Manager plugin <= 2.3.5 - Authenticated (Author+) Remote Code Execution vulnerability

Authenticated Author+ Remote Code Execution vulnerability discovered by Win3 in WordPress Plugin WPCode versions = 2.3.5...

8.8CVSS5.8AI score0.00488EPSS
Exploits2References1Affected Software1
Cvelist
Cvelistadded 2026/05/27 8:37 a.m.27 views

CVE-2025-12686

Buffer copy without checking size of input 'Classic Buffer Overflow' vulnerability in AdminCenter in Synology BeeStation OS before 1.3.2-65648 allows remote attackers to execute arbitrary code via unspecified vectors...

9.8CVSS0.00269EPSS
Exploits0References1
EUVD
EUVDadded 2026/05/27 8:37 a.m.8 views

EUVD-2025-209957

Buffer copy without checking size of input 'Classic Buffer Overflow' vulnerability in AdminCenter in Synology BeeStation Manager BSM before 1.3.2-65648 and Synology BeeStation OS before 1.3.2-65648 allows remote attackers to execute arbitrary code via unspecified vectors...

9.8CVSS7.8AI score0.00269EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/05/27 8:37 a.m.5 views

CVE-2025-12686

Buffer copy without checking size of input 'Classic Buffer Overflow' vulnerability in AdminCenter in Synology BeeStation OS before 1.3.2-65648 allows remote attackers to execute arbitrary code via unspecified vectors...

9.8CVSS7.8AI score0.00269EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/27 8:37 a.m.8 views

CVE-2025-12686

Buffer copy without checking size of input 'Classic Buffer Overflow' vulnerability in AdminCenter in Synology BeeStation OS before 1.3.2-65648 allows remote attackers to execute arbitrary code via unspecified vectors...

9.8CVSS7.8AI score0.00269EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder